The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy ...

A new WhatsApp Web malware campaign spreads automatically, steals banking data, and targets Windows users through trusted ...

Astaroth banking malware is spreading in Brazil through WhatsApp messages, using ZIP files to steal contacts and banking ...

A WhatsApp worm is spreading Astaroth banking malware, automating infections and escalating financial cybercrime risks.

Attackers use a sophisticated delivery mechanism for RAT deployment, a clever way to bypass defensive tools and rely on the ...

According to a report from Palo Alto Networks Unit 42, the malware is advertised on Telegram as the “ultimate stealer” and ...

Dubbed “Boto-Cor-de-Rosa,” the new campaign includes the addition of a WhatsApp web-based worm that allows the malware to spread itself by using a victim’s WhatsApp contacts versus previous Astaroth ...

The Python Package Index (PyPI), run by the Python Software Foundation, has officially invalidated all the publishing tokens that were stolen in the GhostAction supply chain attack that happened ...

A researcher demonstrates how Hinge profile photos and prompts can be exploited as a stealthy malware command-and-control ...

A new variant of the MacSync Stealer uses a code-signed Swift application to get around Apple's macOS Gatekeeper protections. Gatekeeper on macOS does a pretty good job at fending off malware and ...